Appl . No . Unknown 

Amdt. Dated September 7, 2004 



Amendments to the Claims; 

This listing of claims will replace all prior versions, and 
listings, of claims in the application: 

Listing of Claims; 

1. (Currently Amended) : A data network management system for 
identifying unauthorized access to a data network service, 
provided at a service node in a data network, by a user node in 
said data network, said service node having an agent and having 
means for maintaining a user access list, said user access list 
having at least one data network address corresponding to at 
least one user node in said data network, said system 
comprising: 

a data communication means for periodically polling 
communicating with an said agent at said service node and for 
retrieving a user access list from said agent , said user access 
liot including at least one data network address corresponding 
to at least one user node in said data network ; 

a database for maintaining an authorized access list for 
said service node; and 

a data processing means for comparing said user access list 
to said authorized user access list and for updating said 
authorized user access list, said authorized user access list 
being maintained in said database, an updated authorized user 
access list based on an updated user access list for said agent. 

2. (Currently Amended) : A The data network management system as 
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defined in claim 1, wherein said agent is a Simple Network 
Management Protocol agent. 

3. (Currently Amended) : A The data network management system as 
defined in claim 1, wherein said data communication means is a 
Simple Network Management Protocol communication means. 

4. {Currently Amended) : A The data network management system as 
defined in claim 1, further including means for installing 

said agent at said service node, said agent having means to 
communicate with said data communication means.. 

5. (Currently Amended) : A method for identifying unauthorized 
access to a data network service, provided at a service node in 
a data network, by a user node in said data network, said 
service node having an agent and having means for maintaining a 
user access list, said user access list' having at least one data 
network address corresponding to at least one user node in said 
data network, e£ said steps comprising: 

a) retrieving periodically polling an agent and retrieving 
a said user access list, for a given period of time, from as 
agent at said service node in said data network; 

b) comparing said user access list to an authorized access 

list; 

c ) determining if said unauthorized access occurred based 
on said comparison step b) ; 

d) if determined that said unauthorized access occurred in 
step c) , initiating a notification process. 

e-} — determining an unauthorized acccos baocd on oaid 
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comparison atop b) ; 

— if unauthorized accaoo determined in step c) , — initiating 

a notification proceoo. ' 

6. (Currently Amended) : A The method as defined in claim 5, 
further including a step of updating said authorized access list 
based on an updated user access list provided by said agent . 

7. (Currently- Amended) : A- The method as defined in claim 5, 
further including a step of installing said agent at said user 
node, prior to retrieving periodically polling and retrieving 
said user access list in step a) . 

8. (Currently Amended) : A The method as defined in claim 5, 
further including a step of selecting said service node for 
identification based on a predetermined criteria, prior to 
retrieving said user access list in step a) . 

9. (Currently Amended) : A The method as defined in claim 5, 
wherein said notification process further including a step of 
notifying a Network Operations Console. 

10. (Currently Amended) : A The method as defined in claim 5, 
wherein steps a) through c) are repeated, and wherein said user 
node is selected from one of a plurality of user nodes in said 
data network. 

11. (Currently Amended) : A The method as defined in claim 5, 
wherein steps a) through d) are repeated, and wherein said user 
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node is selected from one of a plurality of user nodes in said 
data network. 1 

12. {Currently Amended) : A The method as defined in claim 5, 
wherein said agent is a Simple Network Management Protocol 
agent . 

13. (Currently Amended) : A computer- readable medium for 
identifying unauthorized access to a data network service, 
provided at a service node in a data network, by a user node in 
said data network, said service node having an agent and having 
means for maintaining a user access list, said user access list 
having at least one data network address corresponding to at 
least one user node in said data network, and said medium having 
stored thereon, computer- readable and computer- executable 
instructions which, when executed by a processor, cause said 
processor to perform steps comprising: 

a) periodically polling an agent and retrieving said user 
access list, for a given period of time, from said service node 
in a data network; 

b) comparing said user access list to an authorized access 

list; 

c) determining if said unauthorized access occurred based 

on said comparison step b) ; 

d) if determined that said unauthorized access occurred in 

step c) , initiating a notification process. 

ar) — retrieving n user acccoo list, for a given period of time, 

from an agent at a service node in a data network; 

^ — comparing oaid user acceoo Hot to an authorized access 
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list; 

e-} — determining an unauthorized accooo baaed on the 

comparison step b) ; 

— if unauthorized access determined in otep c) , — initiating 

a notification process. 

14. {Currently Amended) : Ar-The computer- readable medium as 
defined in claim 13, further containing computer- readable and 
computer- executable instructions which perform a step of 
updating said authorized access list based on user access 
information. 

15. (Currently Amended) : ^r-The computer- readable medium as 
defined in claim 13, further containing computer- readable and 
computer- executable instructions which perform a step of 
installing said agent at said user node, prior to retrieving 
said user access list in step a) . 

16. (Currently Amended) : Ar-The computer- readable medium as 
defined in claim 13, further containing computer -readable and 
computer- executable instructions wherein said steps a) through 
c) are repeated, and wherein said user node is selected from one 
of a plurality of user nodes in said data network. 

17. (Currently Amended) : Ar-The computer- readable medium as 
defined in claim 13, wherein said agent is a Simple Network 
Management Protocol agent. 

18. (Currently Amended) : In aA computer for use in a data 
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network for identifying unauthorized access to a data network 
service, provided at a service node in a data network, by a user 
node in said data network, said service node having an agent and 
having means for maintaining a user access list, said user 
access list having at least one data network address 
corresponding to at least one user node in said data network , 
said computer comprising: 

a storage means; 

a central processing unit; 

a data communication means for periodically polling said 
agent at said service node and retrieving a user access list 
from said agent; for communi eating with cm agent at a service 
node and for retrieving a user - access list from said agent, said 
user access list including at least one data network address 
corresponding to at least one user node in said data network; 

said storage means having a database for maintaining an 
authorized access list for said service node; and 

a data processing means for comparing said user access list 
to said authorized user access list and for updating said 
authorized user access list, said authorized user access list 
being maintained in said database, an updated authorized user 
access list based on an updated user access list for said agent. 

19. (New) : The data network as defined in claim 1, wherein said 
authorized user access list is a common authorized user access 
list, and wherein said common authorization user access list 
includes a range of user nodes for comparing to said user access 
list to determine if said user access list is a subset of said 
common authorization user access list. 
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